10/563452 

IAP15Rec'dPCT/PTO 03 JAN 2006 

WO 2005/004037 PCT/AU2004/000880 



5 



"Management Control of Assets" 

Technical Field ""I 
This invention concerns a computerised identity matching management process 3> 
5 for regulating the issue of secure assets. The invention farther concerns a computerised 
. identity matching management process for regulating the return of secure assets. In 
addition the invention concerns a computerized identity matching management system 
for regulating the issue of, or. the return of, secure assets. Finally the invention 00 
. concerns an electronic message for transmission by a biometric capture apparatus jyj 
1 0 during a computerized identity matching process. ^ 

Background Art ' ^ 

The concept of iris recognition was developed and patented by Iridian «^ 
Technologies Ino, and their concept patent US 4,641,349 describes the use of the iris to 

15 identify individuals. US 5,291,560 describes a method by which a biometric, including 
fee iris pattern of an individual, can be used as the basis of an identification technique. 

Argus Solutions Pty Ltd, developed a computerised identity matching 
management process and associated system. Their patent application 
PCT/AU02/01579 describes managing the provision of identity matching services, for 

20 instance to enable users to gain appropriate access to service provider's facilities. The 
essence of that invention is the time limit imposed on the period between the issue of 
the unique code which initiates the capture process, and the receipt of the biometric 
coded with the code. The same code is only ever issued once. This time limit is 
determined according to the time required for the capture process, and serves to reduce 

25 the possibility of the introductibn of a false biometric. For instance a time limit of 
ninety seconds has been found to be suitable when an iris biometric is to be captured. 

Disclosure of Invention 

In a first aspect, the invention is a computerised identity matching management 
30 process for regulating the issue of secure assets, the process comprising the steps of: 
. identifying an asset having a unique classification identifier; 
identifying an issuer of the asset and a receiver of the asset, each comprising the 
steps' of; 

a management computer receiving a request, from capture apparatus 
35 waiting to commence a capture process of a biometric representative of the issuer of the 
asset or the receiver of the asset, to initiate the capture process; 



WO 2005/004037 



PCT/AU2004/000880 



2 

the management computer responding to the request by returning a 
message to the capture apparatus, the message containing a unique code and receipt of 
the message containing the code at the capture apparatus causing initiation of the 
capture process; 

5 tho capture apparatus encoding a captured biometric representative of the 

issuer of the. asset or representative of the receiver of the asset with the code; 

the management computer, after returning the message, receiving the 
encoded captured biometric; and 

the management computer decoding the captured biometric and initiating 
10 a matching pipcess to find a match for the decoded captured biometric against stored 
records and generating an identification code representative of the issuer of the asset or 
representative of the receiver of the asset when a match is found; 

. retrieving a receiver's privilege to detennine whether the receiver's privilege 
matches the asset classification identifier and, if a match is determined 
1 5 issuing the asset and recording information to form, a use record relating to the 

issue of the asset 

The step of the management computer returning the message to the capture 
apparatus may occur at a first instance in time. The management computer may receive 
the encoded captured biometric at a second instance in time, and the management 
20 computer may operate to decode the encoded captured biometric and initiate the 
matching process only when the second instance is less than a predetermined time 
interval Later than the first instance. • 

An asset is defined as a physical item of . value or interest. For instance, the 
assets may include, but are not limited to, firearms, weapons, batons, pharmaceutical 
25 medications and products, narcotics, precious metals and legal documents. 

The .receiver's privilege determine* the type of assets which the receiver is 
authorised to receive. 

The unique identifier is a means of being able to identify each particular asset. 
In one example each asset may be uniquely identified by a barcode. In another 
30 example each asset may be uniquely identified by a radio frequency identifier. The 
unique identifier may be a machine-readable. The unique identifier, such as a barcode, 
may be tamper-proof and may be securely attached to, or imprinted directly onto, or 
into, the asset In such an instance the identifier may be identified by scanning the 
barcode. The invention is not limited to these examples* 
35 The method may further include generating an alert if the receiver's privilege 

. does not match the asset classification. 
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In a second aspect, the invention is a computerised identity matching 
management process for regulating the return of secure assets, the process comprising 
the steps oft 

identifying an asset having a unique classification identifier, 
5 identifying a receiver who seeks to return the asset, comprising the steps oft 

a management computer receiving a request, from capture apparatus 
waiting to commence a capture process of a biometric representative of the receiver 
who seeks to return the asset, to initiate the capture process; 

the management computer responding to the request by returning a 
10 message to the capture apparatus, the message containing a unique code and receipt of 
the message containing the code at the capture apparatus causing initiation of the 
capture process; 

the capture apparatus encoding a captured biometric representative of the 
receiver of the asset with the code; 
15 the management computer, after returning the message, receiving the 

encoded captured biometric; and 

the management computer decoding the captured biometric and initiating, 
a matching process to find a match for the decoded captured biometric against stored 
records and generating an identification code representative of the receiver when a 
20 match is found; 

retrieving a receiver's privilege to determine whether the receiver's privilege 
matches the asset classification identifier and, if a match is determined 

retrieving the asset from the receiver and recording information to form a use 
record relating to the retrieval of the asset. 
25 The process according to the second aspect may also comprise the step of 

identifying an issuer of assets to whom the asset is returned, comprising the steps of: ' 

the management computer receiving a request, from capture apparatus 
waiting to commence a capture process of a biometric representative of the issuer, to 
' initiate the capture process; 
3.0 the management, computer responding to the request by returning a 

message to the capture apparatus at a first instant in time, the message containing a 
unique code and receipt of the message containing the code at the capture apparatus 
causing initiation of the capture process; 

• the capture apparatus encoding a captured biometric representative of the 
35 issuer of the asset with the code; 
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the management computer, after returning the message, receiving the 
encoded captured biometric; and 

the management computer decoding the captured biometric and initiating 
a matching process to find a match for the decoded captured biometric against stored 
5 records and generating an identification code representative of the issuer when a match 
is found. 

In a third aspect, the invention is a computerized identity matching management 
system for regulating the issue of, or the return of, secure assets, comprising: 

a data depository to store records of assets each having a unique asset 
10. classification identifier and a record of receivers and receivers* privileges; 

an asset identifier for identifying the asset to be issued or to be returned; 
a computer programmed to: 

receive a request, from capture apparatus waiting to commence a capture 
process of a biometric, to initiate the capture process to identify a receiver who is 
1 5 requesting the issue of an asset or the return of an asset; 

respond to the request to return a message to the capture apparatus, the 
»' message containing a unique code, and where receipt of the message containing the 
code at the capture apparatus causes initiation of the capture process; 

after returning the message, receive a captured biometric from the capture 
20 apparatus encoded with the code; and 

to decode the captured biometric; 
an authentication server to perform a matching process to find a match for the 
decoded captured biometric against stored records and to generate an identification 
• code representative of the receiver who is requesting the issue of an asset or the return 
25 of an asset when a match is found, the server further retrieving the receiver's privilege 
. to determine Whether the receiver's privilege matches the. asset classification identifier, 
and if a match is determined forming a use record relating to the issue of the asset or 
the return of the asset. 

In an example of the second or third aspects, the step of the management 
30 computer returning the message to the capture apparatus may occur at a first instance in 
time. The management computer may receive the encoded captured biometric at a 
second instance in time, and the management computer operating to decode the 
encoded captured biometric. and initiate the matching process only when the second 
instance is less than a predetermined time interval later than the first instance* 
35 The computer may be further programmed to identify an issuer of assets. 
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The record of the assets use may include' the date and time that the asset was 
issued by the issuer and received by the receiver. The record of the assets use may 
further include the date and time that the issuer received the asset which the receiver 
returned. 

5 The computer may be programmed further such that if a match is determined a 

message is able to be generated authorising the release of the asset to the receiver. 

The computer may be programmed further such that if a match is not determined 
the issuer is* alerted. 

In one example the asset identifier is a radio frequency reader for identifying the 
1 0 asset to be issued or to be returned. In another example the asset identifier is a barcode 
reader for identifying the asset to be issued or to be returned. 

In a fourth aspect the invention is an electronic message for transmission from a 
biometric capture apparatus to a computer during a computerized identity matching 
process for regulating the issue of an asset or the return of an asset, (he electronic 
15 message comprising a captured image of a potential receiver of the asset, the captured 
image encoded with the unique code obtained from the computer. 

Brief Description of Drawings 

An example of the system will now be described with reference to the 
20 accompanying drawings; in which: 

Fig. 1 is a schematic diagram of a system in accordance with an embodiment of 
the invention which is used to regulate the issue of and the return of secure assets; 

. Fig. 2 is a flow chart showing a process for regulating the Issue of secure assets, 
in accordance with an embodiment of the invention; and 
25 Fig. 3 is a flow chart showing a process for regulating the return of secure 

assets, in accordance with an embodiment of the invention. 

Best Modes for Carrying Out the Invention 

Fig. 1 illustrates a system 100 used to regulate the issue of and the return of 

30 secure assets. The system 100 includes an Iris Recognition client computer 105 which 
is programmed to receive and transmit messages through a firewall and over the 
Internet to client software 108. The client software 108 resides in a PC 1 15. The client 
software 108 works with identification spftware J10 and an iris recognition camera 120 
which includes a special lens to photograph the eye. Alternately, the client software 

35 108 may work with identification software 1 10 and an imager 125. An iris recognition 
server 135 accepts the iris image which is sent from the camera 120. In addition, it 
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confirms the image integrity and then sends it through an iris recognition process for 
verification against records stored in its cache which in turn is drawn from a secure 
database 140. 

The database 140 stores asset information, issuer information, receiver 
5 information, a rights table and an asset log. The issuer information includes for each 
issuer: 

• a 'name field\ 

• 'iriscode template fields' for the left and right eye of the issuer, and 

• a' create date field 1 . 

1 0 The receiver information in addition includes a 'privilege field*. 

The asset information includes for each asset ID: 

• an 'asset name field* 

• a 'crcatc date field' 

15 • an 'asset type field' and 

. . • an 'asset classification field'. 
The asset log information includes for each draw sequence #: 

• an 'issuer ID* 

• a 'receiver ID \ 

20 . • a 'rime in field' and 

• a 'time out field' 

The software 110, works with a barcode reader 130 which is used to scan a 
secure asset for release or alternatively for its return. 
25 In this example, the components of the system 100 are installed on site at an 

armoury. The armoury stores secure assets such as firearms. Each firearm stored in the 
armoury has a unique machine-readable, non-removable identification in the form of a 
barcode. 

The PC 115 is. accessed by dispatching officers who have the authorisation to 
30 release assets in and out of the armoury. The camera 120 is used to capture an iris 
.. image of a dispatching officer when the officer is on duty and responsible for the 
release of firearms from the armoury. The camera 120 also operates to capture an 
image of a receiving officer each time the officer wishes to draw one or more firearms 
from the armoury and similarly when the officer returns the firearms to the armoury. 
35 Figure 2 illustrates (he steps required to be undertaken when a firearm is 

requested for release. The dispatching officer starts a session 205. The system is 
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launched and checks whether identification of the dispatching officer is required 210. 
In the event that biometric identification is requested 215, the client software 108 is 
launched and captures the Private ID software 110 to take control of the camera 120 so 
as to record an image of the dispatching officer's right and left irises, step 220, 
5 The client software 108 serids a message to the client computer 105 for a 

message authentication code (MAC). The client computer 105 responds to the request 
. and issues a MAC. 

The MAC is valid for a preset period of time and is unique (i.e.; is only ever 
issued once). The time at which the MAC is issued is embedded in the MAC. 

10 The client software 108 receives the MAC and the identification software 110 

commences capture of the dispatching officer's iris. 

To use camera 120, the dispatching officer moves his or her head so that the 
particular eye being photographed is 43 - 48cm (17 to 19 inches) from the lens. The 
camera 120 sends images to the software 110 running on the computer 115. 

15 The identification software 1 10 captures * series of digital video images of the 

dispatching officer's eye. Image quality metrics within the identification software 110 
. inspect the images for sufficient quality and iris content to ensure high confidence for a 
successful match outcome. Once a satisfactory image has been obtained, the software 
110 provides an audible signal to inform the issuer that the image capture session is 

20 complete, this usually issues within seconds- If a satisfactory image cannot be captured 
within the allotted time (the. default is set at 10 seconds), then the software provides an 
error signal. The dispatching officer would then have to restart the process of having 
images of the iris captured 225. 

Once captured, the process of identifying the dispatching officer begins 230. 

25 The client software 1 08 encrypts the captured image using an appropriate cryptographic 
algorithm. Then it compresses the captured image, codes the compressed image using 
the previously issued MAC and assembles a message for transmission to the client 
computer 105. 

The client computer 105 receives the message from the client software 108. The 
30 client computer 1 05 checks it for validity using the MAC, that is to ensure it has been 
received while the MAC is still valid i.e that the timb that the client computer 105 
receives the message is within the preset period of time to reduce the likelihood of a 
false biometric being issued. The message then has its integrity checked using a 
checksum, and is decompressed and decrypted. It is then passed through a Daugman 
35 Algorithm, or similar, to create an iriscode. 
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The iriscode is then sent to the his recognition server 135 which attempts to 
match it with a record in its secure database 140. The 'iriscode template field* in the 
issuer information table is searched. The Iris recognition server 135 returns a result to 
the client computer 105 which interprets the result. If the result is a comparison failure, 

5 that result is logged and the process stops 235. 

If a match is found, the result indicates that the dispatching officer is an 
authorised issuer 240. The process of identifying the firearm which the receiver wishes 
to borrow is begun 245. The receiving officer has requested a firearm of type A. The 
dispatching officer retrieves the firearm sought Embedded in the handle of the firearm 

10 is a barcode. The dispatching officer scans the barcode. The client software 108 

• receives the identification number of the firearm and sends it to the Iris recognition 
server 135 which attempts to match it with a record in its secure database 140. The 
"asset type field 1 in the asset information table is searched. 

The Iris recognition server 135 returns a result to the client computer 105 which 

15 interprets the result. If the result is a comparison failure, that result is logged and the 
process stops 250. 

If the result is that the firearm is recognised 255 the issuer asks the potential 
receiving officer whether further firearms are to be issued. If further firearms are 
required the process of identifying each of the firearms which the receiver officer 
20 wishes to borrow is repeated 260 . 

If no further firearms are sought 265 the process of identifying the receiving 
officer and the determining whether the receiving officer has the prerequisite rights to 
borrow the firearm sought is begun 270. 

The client software 108 sends a message to the client computer 105 for a MAC, 
25 The client 105 responds to the request and issues a MAC. The client software 108 
receives the MAC and the identification software 110, commences capture of the 
receiving officer's iris* in the same manner as the dispatching officer. 

The captured receiving officer's iriscode is then sent to the Iris recognition 
server 135 which attempts to match it with a record in its secure database 140. The 
30 'iriscode template field' in the receiver information table is searched. The Iris 
recognition server 135 returns a result to the client computer 105 which interprets the 
result 

If the result is that the receiver is not identified, the result is logged and the 
process stops 280, If the receiving officer is identified then the process continues 285. 
35 The iris recognition server then determines whether the identified receiving 

officer is entitled to draw the particular firearm requested. The asset classification for 



WO 2005/004037 



PCT/AU2004/000880 



9 

the firearm sought is attempted to be matched against the 'privilege field' in the 
receiver information table. If the receiving officer is not authorised to draw that 
particular firearm, the result is logged and the process stops 290. 

If the result is that the receiving officer has the required privilege to draw the 
5 particular firearm 295 then the 'asset log information table* is written to. Against the 
particular firearm is written the identification of the dispatching officer, the receiving 
officer and the date and time of release. The issuing process is then complete and the 
firearm are released 298, 

At some later stage the firearm is to be returned to the armoury. Figure 3 
10 illustrates the steps involved when the receiving officer attempts, referred to now as the 
'returnee 1 to return the asset 300. ; The dispatching officer on duty starts the process 
305. The. firearm which is being returned is scanned by the dispatching officer 310. If 
the firearm is not identified the process is logged and stopped 315 and the firearm is 
left in the possession of the returnee. Having identified the firearm 320 the •asset log 
15 information table' of the particular firearm is retrieved from the database 140. If the 
identity of the returnee is not required 325 then the return process stops 370. 

If the identity of the returnee is required 330 the client software 108 is launched 
and captures the identification software 110 to take control of the camera 120 so as to 
record an image of the returnee's right and left irises, step 220. 
20 The client software 108 sends a message to the. client computer 105 for a 

message authentication code (MAC). The client 105 responds to the request and issues 
a MAC. The client software 1 08 receives the MAC and the identification software 1 10 
commences capture of the returnee's irises. Once captured, the client software 108 
encrypts/ compresses and codes the captured image and' assembles a message for 
25 transmission to the client computer 105. 

The client computer 105 receives the message and checks it for validity using 
MAC. that is to ensure it has been received while the MAC is still valid. The message 
then has its integrity checked using a checksum, and is decompressed and decrypted. It 
is then passed through a Daugman Algorithm, or similar, to create an iriscode. 
30 The iriscode is then sent to the Iris recognition server 135 which attempts to 

match it with a record in its secure database 140. The 'iriscode template field' in the 
receiver information table is searched. The Iris recognition server 135 returns a result 
to the client computer 105 which interprets the result. If the result is that the returnee is 
not identified, the result is logged and the process stops 340. If the returnee is 
35 identified then the process continues 345. 
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The returnee is then validated against the information in the database 140. The 
•asset log infonnation table' for the particular firearm is retrieved. The returnee 
identity is checked to determine a match If a match is not detected the result is logged 
and the process stops 360. 
5 . If a match is detected 365, then the time out fit in the 'asset log information 
table' is written to, the asset is returned to the armoury and the return process is 
complete 370. • 

It will be appreciated by persons skilled in the art that numerous variations 
and/or modifications may be made to . the invention as shown in the specific 
10 embodiments without departing from me spirit or scope of the invention as broadly 
described. The present embodiments arc, therefore, to be considered in all respects as 
illustrative and not restrictive. 

For example, in an alternative example, the iris recognition olient computer, 
server and database may be secured offsite at a secure premise. 
IS The above example, when describing the issue of an asset, comprised the steps 

of identifying an issuer of Bss£ts, identifying an asset, identifying a receiver of the asset 
and validating whether the receiver is entitled to draw the asset. It should be 
appreciated that the invention is not limited to the order in which these steps are 
performed,. Since the issuer checks out eaoh asset, it is not necessary for the issuer to 
20 scan his or her iris every time an asset is issued. 



